Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1m1tWA8SXxbU2beUS2Gn85GUEsc.roa
File: 1m1tWA8SXxbU2beUS2Gn85GUEsc.roa (raw, json)
Hash identifier: +Kwepz9cVRl379IyPzqIWAjEx4pPzSRpkux7JER+G0U=
Subject key identifier: D6:6D:6D:58:0F:12:5F:16:D4:D9:B7:94:4B:61:A7:F3:91:94:12:C7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 108EB73A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1m1tWA8SXxbU2beUS2Gn85GUEsc.roa
Signing time: Sat 01 Jan 2022 09:04:57 +0000
ROA not before: Sat 01 Jan 2022 09:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142419
IP address blocks: 2a0e:b107:1167::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277788474 (0x108eb73a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d66d6d580f125f16d4d9b7944b61a7f3919412c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ae:fb:d3:7e:33:a2:89:e4:9a:22:c2:19:2d:
78:1f:a0:83:b7:9e:72:4d:f7:e8:46:7d:c6:f9:e9:
62:12:ed:4a:cf:77:24:cc:38:27:7c:c3:78:7c:29:
e7:8f:e6:fa:1d:93:52:fc:c7:4f:a3:8a:c5:2c:c0:
0e:c2:59:14:b6:16:b6:bb:e6:81:bd:d0:97:e6:78:
44:6c:a3:f7:42:61:4c:cb:8e:d0:30:b6:12:8b:09:
97:41:dc:66:d3:34:b6:5d:28:30:29:a9:4b:10:14:
4e:e0:5f:34:3d:d0:8d:f9:89:32:0c:d1:3f:54:7b:
e0:41:fb:b6:64:d4:67:89:34:e3:43:a1:56:5e:e4:
84:17:a3:e1:7b:5b:da:e9:6e:32:64:61:dd:75:92:
18:14:ed:26:a2:44:10:00:03:ba:f3:5c:e3:09:5f:
de:42:78:09:b0:20:58:7d:96:f7:2b:8c:e9:33:ac:
0b:58:a4:6d:4b:0e:05:47:b0:30:ff:4c:50:18:5a:
41:f5:d6:4e:1e:72:27:61:a5:0e:74:65:95:b1:00:
f1:d4:9f:03:ad:04:cd:7f:75:0a:8f:23:1d:c2:63:
fd:2b:b3:07:19:da:e8:b9:2b:69:79:f5:f1:db:e1:
ac:c3:4d:b1:d2:9a:b0:6f:f2:af:99:0d:ab:ab:dc:
8c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6D:6D:58:0F:12:5F:16:D4:D9:B7:94:4B:61:A7:F3:91:94:12:C7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1m1tWA8SXxbU2beUS2Gn85GUEsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1167::/48
Signature Algorithm: sha256WithRSAEncryption
10:ef:99:16:16:17:91:ad:4c:d1:f7:f9:9f:f3:3a:c7:b7:37:
24:46:68:29:ba:b7:e5:71:f2:ce:3a:25:91:2f:a8:1b:84:c2:
26:54:3a:17:38:f2:22:df:ca:91:1d:7e:0e:0c:51:b5:4f:84:
8c:d6:64:62:93:7c:d2:4b:d5:de:de:b9:7d:f9:24:dd:b1:e2:
45:3b:41:51:cc:a3:ca:85:ba:93:e6:f5:d7:2d:ad:10:2a:b8:
fb:99:b9:68:ff:b2:d5:74:d4:5d:62:4a:f8:9b:82:db:fd:10:
c7:65:78:6a:6f:42:12:b8:9a:50:0e:78:a1:77:cd:a3:05:90:
ab:8b:fd:42:7d:c1:7d:f3:32:2a:75:ab:8f:0d:ac:5c:66:84:
eb:3c:ae:49:82:28:06:ef:e0:40:90:84:8b:5f:6d:98:a5:8e:
53:6c:47:3a:56:4f:85:f6:53:aa:f8:3d:9f:12:1a:30:9b:e7:
ab:47:94:c8:09:be:e6:7b:2e:7e:3d:37:8c:d7:3e:7e:12:eb:
d6:84:18:3e:c7:23:a6:26:92:5d:12:30:7c:82:93:8e:8a:3a:
1a:ac:be:d0:0c:22:1b:6e:c1:01:25:83:08:8e:74:7a:2e:56:
ea:a8:58:1f:53:c5:85:f9:10:9e:a5:56:c0:e9:cb:5d:40:d1:
04:61:73:63
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEEI63OjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDEw
MTA5MDQ1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDY2ZDZkNTgwZjEy
NWYxNmQ0ZDliNzk0NGI2MWE3ZjM5MTk0MTJjNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANmu+9N+M6KJ5JoiwhkteB+gg7eeck336EZ9xvnpYhLtSs93
JMw4J3zDeHwp54/m+h2TUvzHT6OKxSzADsJZFLYWtrvmgb3Ql+Z4RGyj90JhTMuO
0DC2EosJl0HcZtM0tl0oMCmpSxAUTuBfND3QjfmJMgzRP1R74EH7tmTUZ4k040Oh
Vl7khBej4Xtb2uluMmRh3XWSGBTtJqJEEAADuvNc4wlf3kJ4CbAgWH2W9yuM6TOs
C1ikbUsOBUewMP9MUBhaQfXWTh5yJ2GlDnRllbEA8dSfA60EzX91Co8jHcJj/Suz
Bxna6LkraXn18dvhrMNNsdKasG/yr5kNq6vcjGcCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTWbW1YDxJfFtTZt5RLYafzkZQSxzAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
LzFtMXRXQThTWHhiVTJiZVVTMkduODVHVUVzYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOsQcRZzANBgkqhkiG9w0BAQsF
AAOCAQEAEO+ZFhYXka1M0ff5n/M6x7c3JEZoKbq35XHyzjolkS+oG4TCJlQ6Fzjy
It/KkR1+DgxRtU+EjNZkYpN80kvV3t65ffkk3bHiRTtBUcyjyoW6k+b11y2tECq4
+5m5aP+y1XTUXWJK+JuC2/0Qx2V4am9CEriaUA54oXfNowWQq4v9Qn3BffMyKnWr
jw2sXGaE6zyuSYIoBu/gQJCEi19tmKWOU2xHOlZPhfZTqvg9nxIaMJvnq0eUyAm+
5nsufj03jNc+fhLr1oQYPscjpiaSXRIwfIKTjoo6Gqy+0AwiG27BASWDCI50ei5W
6qhYH1PFhfkQnqVWwOnLXUDRBGFzYw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:54 2023 by rpki-client on console-ams.rpki-client.org